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REMARKS 

Applicants respectfully request reconsideration of this application as amended. 

By this Amendment, independent claims have been amended to recite that the 
scope, and tlius the access control rule, is capable of being interpreted by each of the 
plurality of firewalls differently depending on the value of the scope and network 
resource characteristics associated with each of the plurality of firewalls. 

Applicants are concerned that Reid and Antur suffer from the same drawbacks as 
discussed in Applicants^ background of the invention. More specifically, in Antur, while 
management of firewall servers from a central administration point is discussed on 
column 6, lines 47-64, Antui* speciScally states that '"from the central administration 
point, the user can configure or reconfigure each firewall server to have separate security 
chardcteristics or configure or reconfigure groups of firewall servers to have tlie same 
security chanicteristics.^ While a single point of administration for multiple firewalls is 
provided by Antur, Amur does not provide the flexibility as the present invention. For 
example, as discussed in the sTjecification, an exemplary feature of the invention relates to 
declaring, among the types of groups defined by the administrator, control rules whose 
scope is limited to each firewall or extended to the system 2. The administrator specifies 
for the access control rules whether the scope is local to the firewall or global. A rule of 
local scope defines the access relationships between resource groups, said resources 
belonging to tlie same protection domain. The local scope makes it possible to limit the 
rule to access inside the protection domain 5. A rule of global scope defines the possible 
access relationships between two groups in the system 2 as a whole. A rule of global 
scope is saved and can always be used by the administrator to handle general cases of the 

security policy. Rules of global scope govern the access relationships of the group 

"fhe "local" or '^global" scope attribute of each rule is attached to each rule in such a way 

^9280027 S 

PAGE 9/10 ' RCVD AT 10/11/2005 5:09:46 PM [Eastern Daylight Time] ' SVR:USPTO-EFXRF-6/30 * DNIS:2738300 ' mm 610 8686 * DURATION (nim^):02-20 



10/11/2005 16: 16 FAX 703 610 8686 



MILES & STOCKBRIDGE 



@|010 



Appln. No, 09/740,801 Attotney Docket No. T3264.906761 

that each firewall individually knows the scope of the rules (see pages 7 and S of the 
specification), 

Neiihcr Reid or Antur teach or suggest this configurability nor provide any 
infrastructure, or other means of being able to define the access control rules as claimed. 

In that none of the cited references, taken cither alone or in combination, teach or 
suggest the claimed features, Applicants respectfully submit independent Claims 1 1 and 
23 arc patentably distinguishable from the references of record- Moreover, the claims 
that depend therefrom are allowable for at least the reasons outlined above and the 
additional feature(s) recited therein. Accordingly, Applicants respectfully request a 
prompt Notice of Allowance. 

Should the Examiner believe tl^at any further action is necessary to place this 
application in belter form for allowance, the Examiner is invited to contact Applicants' 
representative at the telephone number listed below. 

The Commissioner is hereby authorized to charge to Deposit Account No. 
50-1 165 (T3264-906761) any fees under 37 C.F.K. §§ 1.16 and 1.17 that may be required 
by this paper and to credit any oveipaymenl to that Account. If any extension of time is 
required in connection with the Cling of this paper and has not been separately requested* 
such extension is hereby requested. 

Respectfully svibmitted. 




JHVrjab • ^^1^ 7- 

P92S0027 .,^5^=^^^^^^^ Edward J. Kondracki 

Miles & Stockbridge P.C. Reg. No. 20,604 

1 75 1 Pinnacle Drive, Suite 500 

McLean, Virginia 22102-3833 Jason H. Vick 

(703) 903-9000 Reg- 45,285 

October 11,2005 

CFRTIFICATE OF PACSTMILE TRANSMISSION 
1 hereby certify thai this cojrespondcncc is being facsiTjiile transmitted lo the United St ates Paten t 
and Trademark Office on tjje date shown below. 

_iL4ctr2i:I 



Daie 




9 

PAGE 10/10 ' RCVD AT 10/1112005 5:09:46 PM [Eastern Daylight Time] * SVR:USPTO{FXRF-6/30 * DNIS:2738300 * CSID:703 610 8686 ' DUIUTION (min'SS):02-20 



